A Network Intrusion Detection Approach Using Extreme Gradient Boosting with Max-Depth Optimization and Feature Selection

Authors

  • Ghassan Muslim Hassan Computer Department, College of Science, Mustansiriyah University https://orcid.org/0000-0002-1480-091X
  • Abdu Gumaei Department of Computer Science, College of Computer Engineering and Sciences, Prince Sattam bin Abdulaziz University https://orcid.org/0000-0001-8512-9687
  • Abed Alanazi Department of Computer Science, College of Computer Engineering and Sciences, Prince Sattam bin Abdulaziz University, Al-Kharj 11942, Saudi Arabia https://orcid.org/0000-0001-8138-009X
  • Samah M. Alzanin Department of Computer Science, College of Computer Engineering and Sciences, Prince Sattam bin Abdulaziz University, Al-Kharj 11942, Saudi Arabia

DOI:

https://doi.org/10.3991/ijim.v17i15.37969

Keywords:

Network intrusion detection, machine learning, feature selection, optimization.

Abstract


Network intrusion detection system (NIDS) has become a vital tool to protect information anddetect attacks in computer networks. The performance of NIDSs can be evaluated by the numberof detected attacks and false alarm rates. Machine learning (ML) methods are commonly usedfor developing intrusion detection systems and combating the rapid evolution in the pattern ofattacks. Although there are several methods proposed in the state-of-the-art, the development ofthe most effective method is still of research interest and needs to be developed. In this paper,we develop an optimized approach using an extreme gradient boosting (XGB) classifier withcorrelation-based feature selection for accurate intrusion detection systems. We adopt the XGBclassifier in the proposed approach because it can bring down both variance and bias and hasseveral advantages such as parallelization, regularization, sparsity awareness hardware optimization,and tree pruning. The XGB uses the max-depth parameter as a specified criterion toprune the trees and improve the performance significantly. The proposed approach selects thebest value of the max-depth parameter through an exhaustive search optimization algorithm.We evaluate the approach on the UNSW-NB15 dataset that imitates the modern-day attacks ofnetwork traffic. The experimental results show the ability of the proposed approach to classifyingthe type of attacks and normal traffic with high accuracy results compared with the currentstate-of-the-art work on the same dataset with the same partitioning ratio of the test set.

Cover iJIM – Vol 17, No 15, 2023

Downloads

Published

2023-08-09

How to Cite

Hassan, G. M., Gumaei, A., Alanazi, A., & M. Alzanin, S. (2023). A Network Intrusion Detection Approach Using Extreme Gradient Boosting with Max-Depth Optimization and Feature Selection. International Journal of Interactive Mobile Technologies (iJIM), 17(15), pp. 120–134. https://doi.org/10.3991/ijim.v17i15.37969

Issue

Vol. 17 No. 15 (2023)

Section

Papers

License

Copyright (c) 2023 Abdu Gumaei, Ghassan Muslim Hassan

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

The submitting author warrants that the submission is original and that she/he is the author of the submission together with the named co-authors; to the extend the submission incorporates text passages, figures, data or other material from the work of others, the submitting author has obtained any necessary permission.
Articles in this journal are published under the Creative Commons Attribution Licence (CC-BY What does this mean?). This is to get more legal certainty about what readers can do with published articles, and thus a wider dissemination and archiving, which in turn makes publishing with this journal more valuable for you, the authors.
By submitting an article the author grants to this journal the non-exclusive right to publish it. The author retains the copyright and the publishing rights for his article without any restrictions.
This journal has been awarded the SPARC Europe Seal for Open Access Journals (What's this?)